MS Security Update TODAY

If you have Automatic Updates enabled, it will install automatically:

 

Just remember to uninstall the previous temporary fixes.

 

OK.

I Downloaded:
WindowsXP-KB912919-x86-ENU.exe
from:
http://www.microsoft.com/technet/security/Bulletin/ms06-001.mspx

After much trepidation I installed it....(just don't have alot of faith in M$)

Ran the Vulnaribility test "wmf_checker_hexblog.exe" and came up clean ?

Looking in Add/Remove programs, I don't see an entry for the HOTFIX. I also see several SP2 fixes ( I don't recall ever applying SP2) My Computer - properties shows "XP HOME Version 2002 - Service Pack 1 - Did BG get me again ?
or am I missing something ?

regards:captjlddavis

 

Yes, you can use Ilfak Guilfanov's "wmf_checker_hexblog.exe" to check and see if either his, or Microsoft's new, WMF Vulnerability patch has actually worked. If you are patched, you'll get a little window that states:

No vulnerability has been detected

Your system seems to be invulnerable to the WMF exploit.

Please note that this program tries only one WMF exploit.
In theory other vulnerabilities and exploits are possible,
so stay vigilant and update your system frequently!​

Only if you've installed Ilfak Guilfanov's "wmffix_hexblog13.exe ", (where that "13" can be any version number), will you then see the "Windows WMF Metafile Vulnerability HotFix" in Add/Remove Programs.

To see if Microsoft's WMF exploit patch (KB912919) has been applied, in Add/Remove Programs (on XP), place a checkmark in the little box to the left of "Show Updates" then select "Date Last Use" in the "Sort by:" box to the right of that. Now down near the bottom of the list somewhere you should see:

Security Update for Windows XP (KB912919) - Installed on 01/05/2006​

FWIW, the prior two updates I received here, (auto-update On, Windows XP Professional, fully patched), were:

Update for Windows XP (KB910437) - Installed on 12/14/2005
Security Update for Windows XP (KB905915) - Installed on 12/14/2005​

You can also go to http://windowsupdate.microsoft.com , click the "Review your update history" in the left column, then, if necessary, click the "Date" column header on the right once or twice in order to get the dates sorted in descending order. The topmost update should now read, (horizontally though):

Product: Windows XP
Update: Security Update for Windows XP (KB912919)
Status: (A white checkmark on a little green dot)
Date: Thursday, January 05, 2006
Source: Automatic Updates ​

Note: My "Source:" reads "Automatic Updates ". Yours may read "Microsoft Update website ". Depends on how you applied the Update.

 

Correct. If you:

1. ran the command:
   regsvr32 -u shimgvw.dll​
   you now need to click Start | Run, type in:
   regsvr32 shimgvw.dll​
   and press [Enter] (or click OK). If successful, you get a little box that states:
2. installed Ilfak Guilfanov's "wmffix_hexblog13.exe ", (where that "13" can be any version number), you need to remove the
   Windows WMF Metafile Vulnerability HotFix​
   in Add/Remove Programs.
   
   (Note that you can remove Ilfak's WMF hotfix either before or after installing Microsoft's KB912919 update).

 

Hmmm... you could well be right. Don't remember at the moment. (Not enough coffee yet this morning a-n-d, getting old )

If that's the case though, he should still be able to follow my instructions (above) for retrieving the same info from http://windowsupdate.microsoft.com

 

Thanks to all the replied.
Using various described methods - It looks like It was/is applied and running.

Thanks again

regards:captjlddavis